CVE-2019-17451

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in bfddwarf2findnearestline in dwarf2.c, as demonstrated by nm...

EulerOS 2.0 SP2 : binutils (EulerOS-SA-2019-1836)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The bfdelfparseattributes function in elf-attrs.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29,...

EulerOS 2.0 SP5 : binutils (EulerOS-SA-2019-1799)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a 'member access within null pointer'...

EulerOS 2.0 SP8 : binutils (EulerOS-SA-2019-1790)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference aka SEGV on unknown address 0x000000000000 was discovered in workstuffcopytofrom in cplus-dem.c in GNU libiberty, a...

EulerOS 2.0 SP8 : binutils (EulerOS-SA-2019-1642)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access...

EulerOS 2.0 SP3 : binutils (EulerOS-SA-2019-1278)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in processmipsspecific in readelf.c via a malformed MIPS opti...

openSUSE Security Update : binutils (openSUSE-2019-808)

This update for binutils to version 2.31 fixes the following issues : These security issues were fixed : - CVE-2017-15996: readelf allowed remote attackers to cause a denial of service excessive memory allocation or possibly have unspecified other impact via a crafted ELF file that triggered a...

CVE-2019-9074

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfdgetl32 in libbfd.c, when called from pex64getruntimefunction in pei-x8664.c...

GNU Binutils Excessive Memory Allocation Attempt Vulnerability

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. An excessive memory allocation attempt vulnerability exists in elfreadnotes in elf.c in the Binary File Descriptor BFD library known as libbfd used...

GNU Binutils Out-of-Bounds Read Vulnerability

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. An out-of-bounds read vulnerability exists in the Binary File Descriptor BFD library i.e. libbfd used in GNU Binutils 2.32. An attacker can exploit...

Out-of-bounds

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfdgetl32 in libbfd.c, when called from pex64getruntimefunction in pei-x8664.c...

CVE-2019-9072

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setupgroup in elf.c...

UBUNTU-CVE-2019-9076

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elfreadnotes in elf.c...

CVE-2019-9072

CVE-2019-9072 affects the GNU Binutils Binary File Descriptor library (libbfd) shipped with Binutils 2.32. The issue is an attempted excessive memory allocation in setup_group() within elf.c, which can enable a denial-of-service through memory exhaustion when processing ELF files. Public advisori...

CVE-2019-9073

CVE-2019-9073 affects the GNU Binutils Binary File Descriptor library (libbfd) shipped with Binutils 2.32. It is an attempted excessive memory allocation in _bfd_elf_slurp_version_tables (elf.c). This can impact availability (PARTIAL per CVSSv3), with local attack vector and no confidentiality/in...

CVE-2019-9076

CVE-2019-9076: In GNU Binutils’ Binary File Descriptor library (libbfd) distributed with Binutils 2.32, elf_read_notes in elf.c permits an excessive memory allocation. Connected advisories document the vulnerability in Binutils 2.32 and reference downstream fixes. The EulerOS/Gentoo GLSA entries ...

CVE-2019-9075

CVE-2019-9075 affects GNU Binutils 2.32 (libbfd) with a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap (archive64.c). Multiple connected sources (Astra Linux, CNVD, Debian tracker, F5 advisory, Cloud Linux updates) confirm the vulnerability in the BFD library and describe potential...

EulerOS 2.0 SP5 : binutils (EulerOS-SA-2019-1019)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - binutils: integer overflow via an ELF file with corrupt dwarf1 debug information in libbfd library CVE-2018-7568 - binutils: integer underflow...

CVE-2018-20651

A NULL pointer dereference was discovered in elflinkaddobjectsymbols in elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31.1. This occurs for a crafted ETDYN with no program headers. A specially crafted ELF file allows remote attackers to cause a...

Security Bulletin: Vulnerabilities in GNU binutils affect PowerKVM

Summary PowerKVM is affected by vulnerabilities in GNU binutils. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2018-13033 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by an error in the bfdelfparseattributes in elf-attrs.c and bfdmalloc in...